COI Report – Part IV
Page
185 of
425 589. Separately, at pm on 10 July 2018, Bruce sent an email to (i) the
Permanent Secretary of Health, Mr Chan Heng Kee; (ii) the MOH Director of Medical Services, Associate Professor Benjamin Ong; (iii) the Deputy Secretary Policy)
of Health, Ms Ngiam Siew Ying; and (iv) the Managing Director of
MOHH, Aik Guan. In this email, Bruce informed the recipients of “
a potential EMR systems breach”, and provided an interim update on IHiS’ investigation findings. In addition, Bruce analysed the situation as such in his email:
Our Citrix servers and SCM EMR database servers are likely to have been attacked and breached by a highly sophisticated & intelligent hacking ops. The attacker demonstrated significant understanding of
Citrix, SCM and our physical computing infrastructure. We noticed database retrieval commands (SQLs) to SCM database were made but we are trying to locate evidence that the commands were successfully executed and records accessed. There's likely a system security breach but we can't confirm a data breach. But if the
data accesses were successful, it would be very serious as up to K dispense medication records could have been accessed.
590. At pm on 10 July 2018, SingHealth submitted a formal incident report to MOH Ops Centre
via email. The email was titled “
Incident Report to MOH – 2018/02/01 (Initial Report) on Unauthorized Access to SCM Production Database””. The report stated that the incident was assessed to be a Category 1 incident, and contained a summary of the facts known to IHiS at the time.
591. On 11 July 2018, the Chairman of the SingHealth Board and the Chairman of the Risk Oversight Committee were informed of the Cyber Attack.
Share with your friends: 
